The Hacker News1h
The New Frontier of Security Risk: AI-Generated Credentials
GitHub Copilot adoption rose 27% (2023–2024), causing a 40% spike in secret leaks, widening enterprise attack surfaces.
The Hacker News20h
North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages
North Korean actors used 11 npm packages downloaded 5,600+ times to spread BeaverTail malware, expanding attacks to Bitbucket ...
The Hacker News1h
Supercharging Security & Compliance with AI Copilots
AI copilots streamline security compliance by automating audits, evidence collection, and policy support, improving efficiency by up to 60%.
The Hacker News20h
Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws
EncryptHub, also tracked under the monikers LARVA-208 and Water Gamayun, was spotlighted in mid-2024 as part of a campaign ...
The Hacker News20h
Malicious Python Packages on PyPI Downloaded 39,000+ Times, Steal Sensitive Data
Researchers found Disgrasya downloaded 37,217 times, targeting WooCommerce with carding scripts that steal payment data.
The Hacker News3d
Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware
Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal ...
The Hacker News1d
SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack
Leaked SpotBugs PAT in November 2024 led to a GitHub supply chain attack, compromising Coinbase in March 2025.
The Hacker News2d
OPSEC Failure Exposes Coquettte's Malware Campaigns on Bulletproof Hosting Servers
Novice hacker Coquettte exposed through OPSEC failure using Proton66 to distribute malware and illicit content via fake ...
The Hacker News2d
CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware
Late last month, SEQRITE Labs revealed that academic, governmental, aerospace, and defense-related networks in Russia are ...
The Hacker News3d
Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code
Apache Parquet is a free and open-source columnar data file format that's designed for efficient data processing and ...
The Hacker News1d
Triada Malware Preloaded on Counterfeit Android Phones Infects 2,600+ Devices
Triada malware infected 2,600+ Android devices via counterfeit phones in March 2025, enabling remote access and crypto theft.
The Hacker News3d
Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operation
According to Europol, Kidflix launched in 2021 and amassed a catalog of 91,000 unique videos over time. Roughly 3.5 new ...